$ rpki-client -vvf rpki.apnic.net/member_repository/A915A161/B07B2AB84B1011E9AAE3EE43C4F9AE02/kCs-s81I0JqgoQybLLKA0KDNLbo.mft File: kCs-s81I0JqgoQybLLKA0KDNLbo.mft (raw, json) Hash identifier: eShiWvCM/1g7vCQhtvTgWafLrs3XN+VK6XXWkMBGRAo= Subject key identifier: AC:19:0E:EA:EB:19:D9:ED:0D:86:82:B1:2D:08:20:A5:E1:66:59:84 Authority key identifier: 90:2B:3E:B3:CD:48:D0:9A:A0:A1:0C:9B:2C:B2:80:D0:A0:CD:2D:BA Certificate issuer: /CN=A915A161/serialNumber=902B3EB3CD48D09AA0A10C9B2CB280D0A0CD2DBA Certificate serial: 0F8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kCs-s81I0JqgoQybLLKA0KDNLbo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A161/B07B2AB84B1011E9AAE3EE43C4F9AE02/kCs-s81I0JqgoQybLLKA0KDNLbo.mft Manifest number: 0F8A Signing time: Fri 22 Nov 2024 17:29:56 +0000 Manifest this update: Fri 22 Nov 2024 17:29:56 +0000 Manifest next update: Fri 29 Nov 2024 17:29:56 +0000 Files and hashes: 1: kCs-s81I0JqgoQybLLKA0KDNLbo.crl (hash: 7ls8Y65bFj75Imj237clNd/MQsYOff8mudCaED4zlYs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A161/B07B2AB84B1011E9AAE3EE43C4F9AE02/kCs-s81I0JqgoQybLLKA0KDNLbo.crl rsync://rpki.apnic.net/member_repository/A915A161/B07B2AB84B1011E9AAE3EE43C4F9AE02/kCs-s81I0JqgoQybLLKA0KDNLbo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kCs-s81I0JqgoQybLLKA0KDNLbo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:29:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3978 (0xf8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A161/serialNumber=902B3EB3CD48D09AA0A10C9B2CB280D0A0CD2DBA Validity Not Before: Nov 22 17:29:56 2024 GMT Not After : Nov 29 17:29:56 2024 GMT Subject: CN=6740bf94-6f31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:67:e5:18:e1:4f:0e:83:39:42:1f:68:a9:55: 6f:43:2c:7d:f4:1b:8f:a0:7e:5e:50:2e:1b:3c:51: ca:fc:b8:d9:15:00:40:28:9c:f0:78:ac:df:89:f0: 7d:a6:64:9f:8c:75:9d:ba:d3:94:c3:a2:02:74:8e: aa:7b:f0:b4:a2:ce:fa:c7:18:d1:07:b6:c5:e5:3e: c4:13:f5:40:9c:89:45:70:7f:7b:2d:e3:d3:89:cb: 17:52:6a:fd:ed:d5:98:6d:3f:93:d6:e8:b5:ce:c3: 02:5f:3d:b4:4e:72:c4:1b:72:81:66:98:05:a3:e4: 23:dc:5f:bb:f5:7d:c1:3e:18:dd:2e:04:a5:58:46: 58:8e:d0:5b:29:28:f1:95:99:7d:7d:fa:d1:64:66: 0c:4e:35:5f:0b:ef:77:61:89:cd:b9:ce:9a:09:8e: 2c:cc:9d:ef:ca:3c:c4:04:4d:60:a0:66:33:43:73: 0e:21:1d:97:0e:ad:06:25:3c:1f:6c:ee:a1:11:52: e0:13:41:f9:f3:d7:e0:cc:e4:ff:71:41:32:dc:6f: 9e:17:82:40:88:22:db:6f:6d:48:38:43:ff:3d:4f: 66:c4:82:ca:a3:7a:e7:db:7c:1d:3e:37:1b:62:ed: 7b:da:5e:e5:6e:58:c2:ac:f3:3c:c6:ae:4e:ae:20: eb:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:19:0E:EA:EB:19:D9:ED:0D:86:82:B1:2D:08:20:A5:E1:66:59:84 X509v3 Authority Key Identifier: keyid:90:2B:3E:B3:CD:48:D0:9A:A0:A1:0C:9B:2C:B2:80:D0:A0:CD:2D:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A161/B07B2AB84B1011E9AAE3EE43C4F9AE02/kCs-s81I0JqgoQybLLKA0KDNLbo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kCs-s81I0JqgoQybLLKA0KDNLbo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A161/B07B2AB84B1011E9AAE3EE43C4F9AE02/kCs-s81I0JqgoQybLLKA0KDNLbo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:30:2d:7b:f5:8f:7a:5d:47:24:b9:91:a0:ce:f4:0c:c1:c2: e2:59:bc:07:c5:db:e4:5c:3b:5d:35:bf:56:0b:8a:4f:5a:dd: 2d:84:6a:0b:1d:10:c4:c6:25:43:2b:94:38:67:c2:a0:65:c1: 34:a4:01:40:19:57:bd:5e:59:4b:c0:c0:e9:6f:ee:6b:05:5d: 55:cf:2a:c8:f5:11:49:38:6e:78:1a:a9:61:8e:85:54:7e:c2: 07:c1:fb:e2:42:2f:12:7a:a3:7a:b6:1d:d7:ff:e5:d9:e2:32: 13:7c:4d:6e:64:2e:6b:62:31:de:ce:c7:bd:17:5f:f3:ed:2e: 55:8d:f9:95:82:cc:11:1d:11:35:2d:9a:67:d2:68:42:30:a1: 8a:ac:1a:e9:c0:e5:22:4f:83:5e:73:4d:3b:60:7e:f7:dc:93: 21:68:46:fa:83:fd:85:57:92:86:e2:0a:32:6f:d6:4b:ca:c2: 86:13:f0:da:2c:03:e8:c8:8e:d9:38:9d:85:13:c0:50:99:97: 78:94:2d:0b:73:bb:97:87:f8:de:07:0d:5f:2a:30:7c:6f:c5: 61:f1:c5:b2:c2:f9:67:a3:36:45:0d:36:37:95:dd:d4:4b:9a: 39:fb:17:f7:cf:3a:59:ca:5c:9f:27:8d:38:5e:cb:7d:8d:51: d9:cb:54:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD4owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUExNjExMTAvBgNVBAUTKDkwMkIzRUIzQ0Q0OEQwOUFBMEExMEM5QjJDQjI4MEQw QTBDRDJEQkEwHhcNMjQxMTIyMTcyOTU2WhcNMjQxMTI5MTcyOTU2WjAYMRYwFAYD VQQDEw02NzQwYmY5NC02ZjMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsGflGOFPDoM5Qh9oqVVvQyx99BuPoH5eUC4bPFHK/LjZFQBAKJzweKzfifB9 pmSfjHWdutOUw6ICdI6qe/C0os76xxjRB7bF5T7EE/VAnIlFcH97LePTicsXUmr9 7dWYbT+T1ui1zsMCXz20TnLEG3KBZpgFo+Qj3F+79X3BPhjdLgSlWEZYjtBbKSjx lZl9ffrRZGYMTjVfC+93YYnNuc6aCY4szJ3vyjzEBE1goGYzQ3MOIR2XDq0GJTwf bO6hEVLgE0H589fgzOT/cUEy3G+eF4JAiCLbb21IOEP/PU9mxILKo3rn23wdPjcb Yu172l7lbljCrPM8xq5OriDrXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKwZDurr GdntDYaCsS0IIKXhZlmEMB8GA1UdIwQYMBaAFJArPrPNSNCaoKEMmyyygNCgzS26 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTE2MS9CMDdCMkFCODRC MTAxMUU5QUFFM0VFNDNDNEY5QUUwMi9rQ3MtczgxSTBKcWdvUXliTExLQTBLRE5M Ym8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tDcy1zODFJMEpxZ29ReWJMTEtBMEtETkxiby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTE2MS9CMDdCMkFCODRCMTAxMUU5QUFFM0VFNDNDNEY5QUUwMi9rQ3MtczgxSTBK cWdvUXliTExLQTBLRE5MYm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRMC179Y96XUckuZGgzvQMwcLiWbwHxdvkXDtdNb9WC4pPWt0thGoL HRDExiVDK5Q4Z8KgZcE0pAFAGVe9XllLwMDpb+5rBV1VzyrI9RFJOG54GqlhjoVU fsIHwfviQi8SeqN6th3X/+XZ4jITfE1uZC5rYjHezse9F1/z7S5VjfmVgswRHRE1 LZpn0mhCMKGKrBrpwOUiT4Nec007YH733JMhaEb6g/2FV5KG4goyb9ZLysKGE/Da LAPoyI7ZOJ2FE8BQmZd4lC0Lc7uXh/jeBw1fKjB8b8Vh8cWywvlnozZFDTY3ld3U S5o5+xf3zzpZylyfJ404Xst9jVHZy1Rq -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:03 2024 by rpki-client on console-ams.rpki-client.org